AJ-1371: link snapshots during AnVIL pfb import

[davidangb]

When importing a PFB:

• query WSM to find all pre-existing snapshot references for this workspace. This is a paginated query so it requires some extra logic.
• compare the list of snapshot ids mentioned in the pfb to the list of pre-existing snapshots, and identify the list of not-yet-linked snapshots
• create references from the workspace to those new snapshots

[jladieu]

Possibly a place for an Optional instead of a null? (disclosure: I generally steer clear of nulls in Java if possible)

[davidangb]

I'm gonna push back here - I think that's sound advice to use Optional instead of null for public methods, but this is a private method used only within the class. If it returned Optional, it would require additional steps inside of executeInternal(). Whereas now we can use one step .filter(Objects::nonNull), we'd need to change to .filter(Optional::isPresent).map(Optional::get).

[jladieu]

Sounds fine, particularly making the distinction between public and private APIs. I have a hunch that there'd be some optional-friendly predicate that could stand in for (and have equivalent terseness to) what's already there, but don't know off the top of my head what it'd be so carry on!

[jladieu]

Thanks for the arg comment ❤️

[jladieu]

Another possible place for an Optional?

[davidangb]

same pushback here - as a non-public method (it's only protected instead of private so I can unit-test it), I'm optimizing for performance instead of a good API - this one is also used directly as a stream mapping function

[jladieu]

The way PfbImportException gets thrown (for blowing the hard limit), and the fact that it subclasses IllegalArgumentException make it seem more like some kind of client error than an internal error to me. Should this be a different HTTP status?

That said, I think we'd want to know about these early on as we learn how this feature gets used, so if it makes more sense that it's an 'us' problem than a client problem, then you can keep it as INTERNAL_SERVER_ERROR...I just wonder if it should subclass a different kind of exception in that case.

[davidangb]

The use of IllegalArgumentException here was a copy/paste mistake on my part, I have changed to extend RuntimeException!

I do consider this an "us" problem. Even though I think it highly unlikely that a workspace will have > 10000 snapshot references, it's our fault that we can't handle such a case, so I agree on keeping it as INTERNAL_SERVER_ERROR.

fwiw, I originally wrote the loop inside listAllSnapshots as a while(true) loop, but I got nervous about infinity and decided to add a sanity check and thus imposed a hard limit.

[jladieu]

Is there any sensible way to fail faster if we'll exceed the hard limit? Maybe by pushing the hard limit enforcement down to WSM?

Feels like this approach ends up doing a whole bunch of wasted work and would potentially fail slowly and cause resource waste/exhaustion when paired with some form of retries.

[davidangb]

The only other approach I can think of is to pick a number (maybe not as high as 10000), and make a single request to WSM for that many resources - don't attempt to paginate. Do you think that would be better?

[jladieu]

I think if by your guess this is a really really unlikely scenario that it's maybe not something to worry about and this might be the perfect safeguard...wait till it happens, then worry about it.

I don't think I understand well enough how these snapshots get written to WSM, but the only thing that I think might be better is if we could somehow head them off at write time (into WSM) rather than here at read time.

[jladieu]

I had a few style questions and one more involved thought about how to deal with the hard limit enforcement. But LGTM overall!

[sonarcloud]

Kudos, SonarCloud Quality Gate passed!   

0 Bugs
0 Vulnerabilities
0 Security Hotspots
1 Code Smell

79.3% Coverage
0.0% Duplication